854ddc7758cdee10e91b5ba404acfaf33e80c82074738e48be2c0b33eaf202f9 | Triage

Sharing

General

Target

854ddc7758cdee10e91b5ba404acfaf33e80c82074738e48be2c0b33eaf202f9
Size

75KB
Sample

231011-21wdzsch36
MD5

45118264b045d6b4161389c2ab07849b
SHA1

d16b508882eb58456417aec1cdc1eca37f5abd54
SHA256

854ddc7758cdee10e91b5ba404acfaf33e80c82074738e48be2c0b33eaf202f9
SHA512

316777738c9e2ed7bd27ca1c7592a1895cb8089ffe23e013a0c89621fc2cf0dc6ff8382e367677bf6de612ebfe56da3686623564a401a6c71478ca7b1b2fc567
SSDEEP

1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOJjN:GhfxHNIreQm+HimjN

Score

7^/10

persistence

Malware Config

Targets

- Target
  
  854ddc7758cdee10e91b5ba404acfaf33e80c82074738e48be2c0b33eaf202f9
- Size
  
  75KB
- MD5
  
  45118264b045d6b4161389c2ab07849b
- SHA1
  
  d16b508882eb58456417aec1cdc1eca37f5abd54
- SHA256
  
  854ddc7758cdee10e91b5ba404acfaf33e80c82074738e48be2c0b33eaf202f9
- SHA512
  
  316777738c9e2ed7bd27ca1c7592a1895cb8089ffe23e013a0c89621fc2cf0dc6ff8382e367677bf6de612ebfe56da3686623564a401a6c71478ca7b1b2fc567
- SSDEEP
  
  1536:RshfSWHHNvoLqNwDDGw02eQmh0HjWOJjN:GhfxHNIreQm+HimjN
Score

7^/10

persistence
- Executes dropped EXE
- Loads dropped DLL
- Modifies system executable filetype association
  persistence
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Event Triggered Execution

Change Default File Association

Privilege Escalation

Event Triggered Execution

Change Default File Association

Defense Evasion

Modify Registry

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2